This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft File: qlTEdj6gGMPccCA9BO_nH9SxsGY.mft (raw, json) Hash identifier: 2cT4nLwr8Ha65cbOIaamsQg0HLFazsTPqza+r5B0+90= Subject key identifier: 17:B1:7A:37:FC:97:CF:EF:8D:4A:EF:0E:EC:CD:7E:08:09:A8:62:59 Authority key identifier: AA:54:C4:76:3E:A0:18:C3:DC:70:20:3D:04:EF:E7:1F:D4:B1:B0:66 Certificate issuer: /CN=aa54c4763ea018c3dc70203d04efe71fd4b1b066 Certificate serial: 019AF57809E13E10E9754485469B3813B117 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qlTEdj6gGMPccCA9BO_nH9SxsGY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft Manifest number: 1442 Signing time: Sat 06 Dec 2025 21:01:15 +0000 Manifest this update: Sat 06 Dec 2025 21:01:15 +0000 Manifest next update: Sun 07 Dec 2025 21:01:15 +0000 Files and hashes: 1: 3uOrqvmP8Ja1Ais3wLBFc-Yv8js.roa (hash: exOhjbpn5m/SyHb+kmTmnk1GW2qg2u8lsLmmerL5o9w=) 2: IzP3cDAX9aykSDzKdoH0u3AyA2M.roa (hash: NC8YDjUxW5EM3pV7QmdgO/vAJ9HwNpXuNP3EpqENObk=) 3: f2dJVu8muGYFnZFPcMivMl98KP8.roa (hash: rWmOSQ2QhYKl4L1IyTfTDLKWAGfQI+Kz8vdUqnsATxs=) 4: qlTEdj6gGMPccCA9BO_nH9SxsGY.crl (hash: wthHeeXGg2cmpwD8u+WLPKRA6hbhNmjFB3zwMfH1utE=) 5: svOlfPLlFDJ0sGLcz6b_IG_H3W0.roa (hash: zsvLBGGbQT+oIT4diXH9qGrVZIYbNUKP7yL6prMLg/0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft rsync://rpki.ripe.net/repository/DEFAULT/qlTEdj6gGMPccCA9BO_nH9SxsGY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 21:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f5:78:09:e1:3e:10:e9:75:44:85:46:9b:38:13:b1:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa54c4763ea018c3dc70203d04efe71fd4b1b066 Validity Not Before: Dec 6 21:01:15 2025 GMT Not After : Dec 7 21:01:15 2025 GMT Subject: CN=17b17a37fc97cfef8d4aef0eeccd7e0809a86259 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:0c:48:09:b1:c4:d6:08:c7:ae:72:3a:11:28: 5d:27:ff:91:a8:89:7b:0d:c3:35:fe:59:f1:dc:dc: 7b:d0:c2:a2:90:28:72:19:67:ba:4d:58:d8:c4:08: 35:e2:e8:2e:ca:0e:f7:fc:5b:0f:15:d7:5d:7f:85: e5:e5:e6:23:30:c2:a3:6c:2b:f9:23:a5:c5:ee:4d: 43:f7:94:f4:1c:6f:07:bb:c3:86:cb:74:2f:2f:50: fd:5f:92:1e:c5:4c:25:35:19:73:ee:e4:8d:51:15: a5:05:81:39:fe:ff:ab:08:0d:c8:fe:b5:9e:23:f8: 0e:06:3d:47:f0:6d:11:0b:58:0c:52:4d:59:13:eb: 23:fb:4c:4c:a3:1a:c0:44:35:c0:a2:be:85:20:72: 6a:30:0e:5d:46:92:66:a0:51:6c:1d:43:1f:88:88: 0f:19:aa:e6:e7:4b:19:67:6c:0c:1f:1c:bd:c8:0b: bb:8d:30:6e:f1:7e:66:8d:18:28:2d:16:af:14:23: 68:4f:e1:8b:a9:1e:0c:18:74:7b:f3:6b:01:db:ba: e7:d9:c5:d4:2a:94:ba:11:49:f7:32:25:25:a6:cc: 68:8b:80:b4:d9:48:07:51:32:a1:3a:d3:3d:ad:7a: 7d:51:a2:88:d3:2b:fe:db:c2:02:8c:da:12:a2:a7: 9d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:B1:7A:37:FC:97:CF:EF:8D:4A:EF:0E:EC:CD:7E:08:09:A8:62:59 X509v3 Authority Key Identifier: keyid:AA:54:C4:76:3E:A0:18:C3:DC:70:20:3D:04:EF:E7:1F:D4:B1:B0:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qlTEdj6gGMPccCA9BO_nH9SxsGY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/a21c9e-87f1-4983-8394-de37673c409c/1/qlTEdj6gGMPccCA9BO_nH9SxsGY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b0:e1:16:1d:63:c5:91:43:b0:84:8b:c4:d1:8c:00:db:4e:07: 47:f3:d3:6e:51:0c:7f:66:78:7a:fd:40:01:09:3e:ef:72:0a: 83:da:5e:f4:9a:04:87:e2:f2:f2:77:41:e2:f6:85:19:97:80: 48:d5:b1:4e:0f:ab:41:5a:9d:81:3d:cf:5a:07:ec:fe:7f:0c: 49:fb:84:cd:bf:4e:5b:50:43:c6:63:45:b3:4b:f5:a6:c2:f5: 66:89:84:a4:c2:8c:f5:3c:b3:b1:66:43:bf:8b:24:87:85:6e: 8c:87:cd:cb:10:82:47:0f:b9:ba:81:79:36:fe:67:ae:db:dd: 96:c7:a7:15:6b:e4:af:18:c5:4c:1b:2d:b4:87:2f:2e:8e:ac: c0:4a:f7:0e:63:23:dc:d6:24:44:0c:57:12:3e:66:fa:57:ae: 4c:8d:dc:29:00:e8:64:99:6c:2e:0d:7e:b5:e7:55:78:ed:51: dc:c7:dd:4e:48:94:d8:28:d8:83:14:d8:4e:0b:13:78:ef:3d: bc:90:2f:8f:89:97:c4:97:ed:b2:de:80:c9:b4:48:46:78:ac: 45:01:ef:fc:ee:99:7b:9e:a6:ad:d7:66:f4:2f:92:eb:70:9e: d3:20:fe:da:3d:b1:14:e8:90:c8:9c:9f:ff:6b:73:b1:40:d9: d1:97:b7:6a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr1eAnhPhDpdUSFRps4E7EXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhNTRjNDc2M2VhMDE4YzNkYzcwMjAzZDA0ZWZlNzFmZDRi MWIwNjYwHhcNMjUxMjA2MjEwMTE1WhcNMjUxMjA3MjEwMTE1WjAzMTEwLwYDVQQD EygxN2IxN2EzN2ZjOTdjZmVmOGQ0YWVmMGVlY2NkN2UwODA5YTg2MjU5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkAxICbHE1gjHrnI6EShdJ/+RqIl7 DcM1/lnx3Nx70MKikChyGWe6TVjYxAg14uguyg73/FsPFdddf4Xl5eYjMMKjbCv5 I6XF7k1D95T0HG8Hu8OGy3QvL1D9X5IexUwlNRlz7uSNURWlBYE5/v+rCA3I/rWe I/gOBj1H8G0RC1gMUk1ZE+sj+0xMoxrARDXAor6FIHJqMA5dRpJmoFFsHUMfiIgP Garm50sZZ2wMHxy9yAu7jTBu8X5mjRgoLRavFCNoT+GLqR4MGHR782sB27rn2cXU KpS6EUn3MiUlpsxoi4C02UgHUTKhOtM9rXp9UaKI0yv+28ICjNoSoqedTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBexejf8l8/vjUrvDuzNfggJqGJZMB8GA1UdIwQY MBaAFKpUxHY+oBjD3HAgPQTv5x/UsbBmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcWxURWRqNmdHTVBjY0NBOUJPX25IOVN4c0dZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9hMjFjOWUtODdmMS00OTgzLTgzOTQt ZGUzNzY3M2M0MDljLzEvcWxURWRqNmdHTVBjY0NBOUJPX25IOVN4c0dZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS9hMjFjOWUtODdmMS00OTgzLTgzOTQtZGUzNzY3M2M0MDlj LzEvcWxURWRqNmdHTVBjY0NBOUJPX25IOVN4c0dZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsOEWHWPF kUOwhIvE0YwA204HR/PTblEMf2Z4ev1AAQk+73IKg9pe9JoEh+Ly8ndB4vaFGZeA SNWxTg+rQVqdgT3PWgfs/n8MSfuEzb9OW1BDxmNFs0v1psL1ZomEpMKM9TyzsWZD v4skh4VujIfNyxCCRw+5uoF5Nv5nrtvdlsenFWvkrxjFTBsttIcvLo6swEr3DmMj 3NYkRAxXEj5m+leuTI3cKQDoZJlsLg1+tedVeO1R3MfdTkiU2CjYgxTYTgsTeO89 vJAvj4mXxJftst6AybRIRnisRQHv/O6Ze56mrddm9C+S63Ce0yD+2j2xFOiQyJyf /2tzsUDZ0Ze3ag== -----END CERTIFICATE-----Generated at Sun Dec 7 02:25:16 2025 by rpki-client